v1.43
o healed the win32 code fork: ngrep now builds from the same
source tree for all platforms including Windows
o re-wrote the privilege revocation logic after problems were
reported with the SPC version, and removed non-root
drop_privs capability altogether
o fix off-by-one bug which caused ngrep to exit 1 packet early
when ``-A'' as invoked
o Fixed problematic configtest for old broken-redhat-glibc UDP
header
o ngrep now sets a pcap filter "ip" by default, if one is not
specified
o header offset fix to 802.11 processing
o support IGMP and Raw (unknown IP protocol) type packets
o support for latest versions of libpcap (0.8.3) and winpcap
(3.1 beta 4)
o updated configure to autoconf 2.59, and config.guess and
config.sub to latest versions
o updated PCRE from 3.4 to 5.0
o and various minor changes and updates to improve ngrep
* Manual cropping and scaling
* Custom temporary directory
* Rip from DVD structure
* Minor UI redesign
* Many many fixes
- Add a patch to fix the issue that caused error messages to be displayed in
the console (incorrect cast) [1]
Obtained from: Olivier Rolland <billl@users.sourceforge.net> (author) [1]
1) Incorporated Florent Thoumie's <flz@xbsd.org> suggestion
of adding pkg-message so pkg users may also see it.
2) added handling of ports that conflict with ports that
are being upgraded, inspired by "Brian John" <brianjohn at fusemail.com>
3) Added percent done message to xterm title bar as requested by
<mark.magiera at gmail.com>
4) port is repackaged because too many changes to configure.ac
for a patch to be feasable
PR: 77942
Submitted by: Michael C. Shultz <ringworm01 at gmail.com>
Security: Fix possible single byte overflow in mailbox handling code.
Security: Fix possible single byte overflows in the imapd annotate
extension.
Security: Fix stack buffer overflows in fetchnews (exploitable by
peer news server), backend (exploitable by admin), and in
imapd (exploitable by users though only on platforms where
a filename may be larger than a mailbox name).
The previous versions can generate corrupted output when the input
BDF font file contains a '%' character. The users should update
this port and rebuild all of BDF files generated by the old ones if any.
Also, the previous versions have a possible format string
vulnerability which can be triggered by a maliciously-crafted BDF
font file.
Reported by: SHIOZAKI Takehiko (st at be dot to),
Tod McQuillin (devin at spamcop dot net)
Suggested by: KANOU Hiroki (kanou at khdd dot net)
Fixed by: caffeine@m13.alpha-net.ne.jp (Author)
Approved by: KOMATSU Shinichiro (maintainer)
Security: the previous versions have a format string vulnerability
- Update WWW: line to new web page
- rename WITH_LIBXML2 knob to WITH_XML
- add freetype2 knob, WITH_FREETYPE
- remove WITH_SUBRIP knob
- remove dependency on nasm, all done with inline c assembly.
- Rename WITH_LIBTHEORA to WITH_THEORA
- use libquicktime now instead of openquicktime, with new
knob WITH_QUICKTIME
PR: ports/77860
Submitted by: Hendrik Scholz <hendrik@scholz.net>
Amd64 Build: pav
